Class Saml2Authentication
- java.lang.Object
-
- org.springframework.security.authentication.AbstractAuthenticationToken
-
- org.springframework.security.saml2.provider.service.authentication.Saml2Authentication
-
- All Implemented Interfaces:
java.io.Serializable
,java.security.Principal
,Authentication
,CredentialsContainer
public class Saml2Authentication extends AbstractAuthenticationToken
An implementation of anAbstractAuthenticationToken
that represents an authenticated SAML 2.0Authentication
.The
Authentication
associates valid SAML assertion data with a Spring Security authentication object The complete assertion is contained in the object in String format,getSaml2Response()
- Since:
- 5.2
- See Also:
AbstractAuthenticationToken
, Serialized Form
-
-
Constructor Summary
Constructors Constructor Description Saml2Authentication(AuthenticatedPrincipal principal, java.lang.String saml2Response, java.util.Collection<? extends GrantedAuthority> authorities)
Construct aSaml2Authentication
using the provided parameters
-
Method Summary
All Methods Instance Methods Concrete Methods Modifier and Type Method Description java.lang.Object
getCredentials()
The credentials that prove the principal is correct.java.lang.Object
getPrincipal()
The identity of the principal being authenticated.java.lang.String
getSaml2Response()
Returns the SAML response object, as decoded XML.-
Methods inherited from class org.springframework.security.authentication.AbstractAuthenticationToken
equals, eraseCredentials, getAuthorities, getDetails, getName, hashCode, isAuthenticated, setAuthenticated, setDetails, toString
-
-
-
-
Constructor Detail
-
Saml2Authentication
public Saml2Authentication(AuthenticatedPrincipal principal, java.lang.String saml2Response, java.util.Collection<? extends GrantedAuthority> authorities)
Construct aSaml2Authentication
using the provided parameters- Parameters:
principal
- the logged in usersaml2Response
- the SAML 2.0 response used to authenticate the userauthorities
- the authorities for the logged in user
-
-
Method Detail
-
getPrincipal
public java.lang.Object getPrincipal()
Description copied from interface:Authentication
The identity of the principal being authenticated. In the case of an authentication request with username and password, this would be the username. Callers are expected to populate the principal for an authentication request.The AuthenticationManager implementation will often return an Authentication containing richer information as the principal for use by the application. Many of the authentication providers will create a
UserDetails
object as the principal.- Returns:
- the
Principal
being authenticated or the authenticated principal after authentication.
-
getSaml2Response
public java.lang.String getSaml2Response()
Returns the SAML response object, as decoded XML. May contain encrypted elements- Returns:
- string representation of the SAML Response XML object
-
getCredentials
public java.lang.Object getCredentials()
Description copied from interface:Authentication
The credentials that prove the principal is correct. This is usually a password, but could be anything relevant to theAuthenticationManager
. Callers are expected to populate the credentials.- Returns:
- the credentials that prove the identity of the
Principal
-
-